Deep-Security-Professional – Trend Micro Certified Professional for Deep Security Exam

Select an option, then click Submit answer.

• ○

  The Firewall Protection Module can check files for certain characteristics such as compression and known exploit code.

• ○

  The Firewall Protection Module can identify suspicious byte sequences in packets.

• ○

  The Firewall Protection Module can detect and block Cross Site Scripting and SQL In-jection attacks.

• ○

  The Firewall Protection Module can prevent DoS attacks coming from multiple systems.

Select an option, then click Submit answer.

• ○

  The Integrity Monitoring Protection Module monitors traffic to verify the integrity of incoming traffic to identify protocol deviations, packets fragments and other protocol anomalies.

• ○

  The Integrity Monitoring Protection Module monitors critical operating system objects such as services, processes, registry keys and ports to detect and report malicious or unexpected changes.

• ○

  The Integrity Monitoring Protection Module monitors incoming traffic to confirm the integrity of header information including packet source and destination details.

• ○

  The Integrity Monitoring Protection Module monitors and analyzes the integrity of application logs to identify tampering, corruption and other suspicious modifications to the logs.

Select an option, then click Submit answer.

• ○

  Any document files that display suspicious behavior will be submitted and executed in a sandbox environment on a Deep Discover Analyzer device.

• ○

  Deep Security Agents using this Malware Scan Configuration will not monitor for compromised Windows processes.

• ○

  Deep Security Agents will only be able to identify malware in files by using patterns downloaded from the Smart Protection Network.

• ○

  Internet access is required to properly enable the features identified in this configuration.